package com.bh.filter;

import java.io.IOException;

import javax.servlet.Filter;
import javax.servlet.FilterChain;
import javax.servlet.FilterConfig;
import javax.servlet.ServletException;
import javax.servlet.ServletRequest;
import javax.servlet.ServletResponse;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
import javax.servlet.http.HttpSession;

/**
 * Servlet Filter implementation class LoginFilter
 */
public class LoginFilter implements Filter {

    /**
     * Default constructor. 
     */
    public LoginFilter() {
        // TODO Auto-generated constructor stub
    }

	/**
	 * @see Filter#destroy()
	 */
	public void destroy() {
		// TODO Auto-generated method stub
	}

	/**
	 * @see Filter#doFilter(ServletRequest, ServletResponse, FilterChain)
	 */
	public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
		// TODO Auto-generated method stub
		// place your code here
		HttpServletRequest req=(HttpServletRequest)request;
        HttpServletResponse resp=(HttpServletResponse)response;
        HttpSession session=req.getSession(true);
        //session.setAttribute("clientip", (String)req.getLocalAddr());
        String filepath=req.getServletPath();
        String contextpath=req.getContextPath();
        if (!filepath.equals("/login.html") && filepath.indexOf("LoginAction")==-1) {
                if (session.getAttribute("loginname")==null || session.getAttribute("loginname").equals("")) {
                	System.err.println(filepath+"未通过session验证!");
                    resp.sendRedirect(contextpath+"/login.html");
                }else {
                	System.err.println(filepath+"通过session验证!");
                	chain.doFilter(request, response);
                }
        }/*else{
        	if (session.getAttribute("clientip")!=null && !((String)session.getAttribute("clientip")).equals((String)req.getRemoteAddr())) {
        		System.err.println(filepath+"未通过session验证,客户端IP与session中IP不一致!");
        		resp.sendRedirect(contextpath+"/login.jsp?6Z2e5rOV6K6/6ZeuIQ==");
			}
        	chain.doFilter(request, response);
        }*/
		// pass the request along the filter chain
		//chain.doFilter(request, response);
	}

	/**
	 * @see Filter#init(FilterConfig)
	 */
	public void init(FilterConfig fConfig) throws ServletException {
		// TODO Auto-generated method stub
	}

}
